What I'm doing right now is taking the MentalBlank server files for Dragonfable and updating the code to be more secure and I'll be sharing my portable webserver content which includes the following:

- Nginx 1.13.5 (x64) - MariaDB 10.2 (I think 10.2.7 but it could be 10.2.8) - PHP 7.2.0RC1 (This is useful because we can test the Argon2i hashing algorithm which should be quicker and as effective as bcrypt) - PHPMyAdmin 4.7.4

Plus I'll include an Nginx blocklist for VPNs/Proxies/TOR to prevent users from running unwanted security auditing software and I'll include a mandatory captcha that will toggle if a session value isn't set to '1' or some proprietary value so that it can block scraper scripts and the scraper scripts in case the VPN/Proxy/TOR blocker stops functioning (new addresses or new ASNs for VPN connections)

Not to forget that I'll even include a proper admin panel, anti-cheat measures, improved SWF gatherer, SWF error checking (so broken areas and quests can be found in the admin control panel), and make the following security changes:

- Enforce prepared statements for all queries (no query left unchecked, no statement left unprepared, no point of SQL injection to be found) - Enforce PDO for database connections (no more SQL or SQLi, everything will now be PDO) - Enforce htmlspecialchars for user inputs and comments (no XSS vulnerabilities to be seen on this remix)

And I might as well embed a forum with this release for extra credit (It'll likely be a modified version of MyBB).

Here's what will be included:

- A proper class system for object-oriented programming style. - An improvement for site design (I may implement GrapesJS for easy click-and-drag WYSIWYG template modifications) - A shelled out variant for those wanting to convert it over to work with other types of private server contents. - An improvement to site loading by making some of the more bandwidth intensive content load onmouseover (such as advertisements) - Some SEO-friendly additions for those wanting to be seen by search engines. - An easy PayPal integration script that can make it easier to receive donations and payments for premium services and/or in-game items. - Much more that may come to my mind as I'm developing this site update.

Sorry for the long response.

Drakius

Post subject: Re: Sorry for the downtime..

Posted: Sun Sep 10, 2017 15:14 pm

Joined: Fri Jun 05, 2015 0:35 amPosts: 43

KimChoJapFan wrote:

african wrote:

to get community active you need to release ac hack for aqw

What I'm doing right now is taking the MentalBlank server files for Dragonfable and updating the code to be more secure and I'll be sharing my portable webserver content which includes the following:

- Nginx 1.13.5 (x64) - MariaDB 10.2 (I think 10.2.7 but it could be 10.2.8) - PHP 7.2.0RC1 (This is useful because we can test the Argon2i hashing algorithm which should be quicker and as effective as bcrypt) - PHPMyAdmin 4.7.4

Plus I'll include an Nginx blocklist for VPNs/Proxies/TOR to prevent users from running unwanted security auditing software and I'll include a mandatory captcha that will toggle if a session value isn't set to '1' or some proprietary value so that it can block scraper scripts and the scraper scripts in case the VPN/Proxy/TOR blocker stops functioning (new addresses or new ASNs for VPN connections)

Not to forget that I'll even include a proper admin panel, anti-cheat measures, improved SWF gatherer, SWF error checking (so broken areas and quests can be found in the admin control panel), and make the following security changes:

- Enforce prepared statements for all queries (no query left unchecked, no statement left unprepared, no point of SQL injection to be found) - Enforce PDO for database connections (no more SQL or SQLi, everything will now be PDO) - Enforce htmlspecialchars for user inputs and comments (no XSS vulnerabilities to be seen on this remix)

And I might as well embed a forum with this release for extra credit (It'll likely be a modified version of MyBB).

Here's what will be included:

- A proper class system for object-oriented programming style. - An improvement for site design (I may implement GrapesJS for easy click-and-drag WYSIWYG template modifications) - A shelled out variant for those wanting to convert it over to work with other types of private server contents. - An improvement to site loading by making some of the more bandwidth intensive content load onmouseover (such as advertisements) - Some SEO-friendly additions for those wanting to be seen by search engines. - An easy PayPal integration script that can make it easier to receive donations and payments for premium services and/or in-game items. - Much more that may come to my mind as I'm developing this site update.

Plus you must install PHP 7.2.0+ if you're wanting to make use of the Argon2i hashing function. I still recommend installing PHP 7.0+ because the server package I'm writing won't accept password hashes hashed in anything less than bcrypt.

Now PHP 5.6 may have bcrypt support (I haven't checked since I haven't operated with PHP 5.6 in over a year) but that's not really the important bit.

You cannot post new topics in this forumYou cannot reply to topics in this forumYou cannot edit your posts in this forumYou cannot delete your posts in this forumYou cannot post attachments in this forum